Email	Print Reprint
	add to:
	Del.icio.us Digg Google Furl	Slashdot Y! MyWeb Blink
	TABLE OF CONTENTS 2006 Jolt Awards Jolt Hall of Fame Books General Books Technical Enterprise Project Management Database Engines and Data Tools Defect Tracking, Change, and Configuration Management Design Tools and Modeling Development Environments Libraries, Frameworks, and Components Mobile Development Tools Quality and Project Management Security Tools Testing Tools Utilities Web Development Tools

Security Tools

Elemental Compliance System 1.4
Elemental (www.elementalsecurity.com)

Are your security policies deployed in technical-spec terms of ports, protocols, and IP addresses? Are they hard to read and adapt to new network devices and configurations? The Elemental Compliance Policy Language changes this by letting users express, monitor, and enforce security policies in business-friendly ways. The system then observes broadcast traffic and evaluates security issues. Similarly, the Elemental Compliance System identifies and restricts network access for hosts and users that are noncompliant with critical security policies.

Elemental's software keeps up with the continuous change by dynamically classifying groups of hosts based on hundreds of attributes. With more than 1500 included policies derived from security best practices of leading organizations, administrators can get a quick start using these or create their own custom policies.

—Roland Racko

Productivity Award Winners

CodeAssure 2.0
Secure Software (securesoftware.com)

Static analysis of code bases is a critically important facet of software development—and few companies offer a more accurate and thorough tool for analyzing C and Java code than Secure Software. CodeAssure is among the best at identifying security holes and recognizing dubious constructs, making it particularly attractive to enterprises—the very companies that have the most to lose in the event of security breaches.

—Andrew Binstock

DevPartner SecurityChecker 1.0
Compuware (compuware.com)

Compuware's DevPartner SecurityChecker 1.0 is a commendable first attempt at a tool that offers comprehensive code security analysis for .NET code. Even though this first release suffers from 1.0 feature limitations, its stellar compile-time, runtime, and integrity security code violation checking and reporting make it a valuable investment for any security conscious enterprise.

—Mike Riley

Fortify Security Tester 1.0
Fortify (fortifysoftware.com)

The Fortify Security Tester is an excellent security analysis and QA tool for ASP.NET web application developers. It automatically generates tests to cover potential security vulnerabilities based on use cases, which are either automatically generated by a web crawler or recorded by Fortify when you go through the web application. The Fortify tests cover areas like SQL injection, XPath injection, and cross-site scripting.

—Michael Yuan

Previous Page | 1 2006 Jolt Awards | 2 Jolt Hall of Fame | 3 Books General | 4 Books Technical | 5 Enterprise Project Management | 6 Database Engines and Data Tools | 7 Defect Tracking, Change, and Configuration Management | 8 Design Tools and Modeling | 9 Development Environments | 10 Libraries, Frameworks, and Components | 11 Mobile Development Tools | 12 Quality and Project Management | 13 Security Tools | 14 Testing Tools | 15 Utilities | 16 Web Development Tools Next Page

RELATED ARTICLES Logging In C++ : Part 2 OutSystems Updates Agile Platform SDK, .NET Controls Released for Communications Enabling Web Pages Welcome To the World of Cryptographic Voting recls 100% .NET		TOP 5 ARTICLES No Top Articles.